Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/06444c-9d9b-4c6b-950b-79c8987a8b1c/1/DJdasOp7wywx5h8I1dlkW--JilQ.roa
File: DJdasOp7wywx5h8I1dlkW--JilQ.roa (raw, json)
Hash identifier: IZRBylK6Ug9sQAXTkcWqd2+ydivUHx2jIXt6ISz0yKQ=
Subject key identifier: 0C:97:5A:B0:EA:7B:C3:2C:31:E6:1F:08:D5:D9:64:5B:EF:89:8A:54
Certificate issuer: /CN=5a43e9e267956e7f262c17f0089f0f60ba7abefb
Certificate serial: 018BC32F487E63E020D6940B5104865D0D27
Authority key identifier: 5A:43:E9:E2:67:95:6E:7F:26:2C:17:F0:08:9F:0F:60:BA:7A:BE:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WkPp4meVbn8mLBfwCJ8PYLp6vvs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/06444c-9d9b-4c6b-950b-79c8987a8b1c/1/DJdasOp7wywx5h8I1dlkW--JilQ.roa
Signing time: Sun 12 Nov 2023 10:58:57 +0000
ROA not before: Sun 12 Nov 2023 10:58:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201771
IP address blocks: 46.49.186.0/24 maxlen: 24
46.49.192.0/24 maxlen: 24
46.49.202.0/23 maxlen: 23
46.49.200.0/23 maxlen: 23
46.49.211.0/24 maxlen: 24
46.49.209.0/24 maxlen: 24
46.49.128.0/24 maxlen: 24
46.49.133.0/24 maxlen: 24
46.49.138.0/24 maxlen: 24
95.177.147.0/24 maxlen: 24
95.177.146.0/24 maxlen: 24
95.177.151.0/24 maxlen: 24
46.49.151.0/24 maxlen: 24
95.177.150.0/24 maxlen: 24
46.49.150.0/24 maxlen: 24
46.49.159.0/24 maxlen: 24
46.49.154.0/24 maxlen: 24
95.177.160.0/19 maxlen: 19
2a02:df1::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 13 Nov 2023 10:24:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:c3:2f:48:7e:63:e0:20:d6:94:0b:51:04:86:5d:0d:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5a43e9e267956e7f262c17f0089f0f60ba7abefb
Validity
Not Before: Nov 12 10:58:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0c975ab0ea7bc32c31e61f08d5d9645bef898a54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:96:07:95:b7:76:52:7a:4b:cf:c9:fa:aa:b1:
35:e6:b3:85:94:63:19:b5:f2:77:2e:cb:57:05:3d:
72:b0:ab:bb:18:ed:1e:be:06:80:10:1e:6e:da:f7:
81:de:9e:6d:42:32:ca:3a:d0:1b:d8:12:ad:fd:57:
ed:21:1d:8e:a2:7a:56:eb:65:0e:ed:2a:02:9f:ed:
f8:e6:c6:d1:4d:1f:8e:c7:42:6e:29:ec:21:f2:bc:
55:30:fe:5e:d9:72:33:a4:cf:80:57:86:07:22:05:
1b:45:01:5f:a4:b9:40:35:58:fe:87:9c:54:04:9b:
5f:84:5b:99:e5:76:ee:bb:b4:4c:75:f0:f1:95:bf:
df:3d:33:2d:41:b7:aa:f2:59:d8:6c:c8:45:1f:4b:
b5:fb:0b:65:7e:a9:d7:a4:94:8f:56:9b:e4:e7:eb:
7f:e7:6a:68:49:88:f1:77:10:37:a8:61:6f:2c:8b:
6e:57:11:1b:3a:af:10:c7:96:62:bd:bb:d7:c2:d4:
d5:59:45:fa:4b:a6:d5:a7:74:4d:5e:9d:40:00:97:
7a:35:72:44:a5:4a:a7:fb:8c:62:bc:ca:c9:5d:f8:
eb:23:a0:d0:80:29:ad:f7:5b:4d:88:b7:ab:3e:60:
ae:13:ac:7e:c8:60:87:08:3a:15:49:ca:1f:c0:be:
57:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:97:5A:B0:EA:7B:C3:2C:31:E6:1F:08:D5:D9:64:5B:EF:89:8A:54
X509v3 Authority Key Identifier:
keyid:5A:43:E9:E2:67:95:6E:7F:26:2C:17:F0:08:9F:0F:60:BA:7A:BE:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WkPp4meVbn8mLBfwCJ8PYLp6vvs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/06444c-9d9b-4c6b-950b-79c8987a8b1c/1/DJdasOp7wywx5h8I1dlkW--JilQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/06444c-9d9b-4c6b-950b-79c8987a8b1c/1/WkPp4meVbn8mLBfwCJ8PYLp6vvs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.49.128.0/24
46.49.133.0/24
46.49.138.0/24
46.49.150.0/23
46.49.154.0/24
46.49.159.0/24
46.49.186.0/24
46.49.192.0/24
46.49.200.0/22
46.49.209.0/24
46.49.211.0/24
95.177.146.0/23
95.177.150.0/23
95.177.160.0/19
IPv6:
2a02:df1::/32
Signature Algorithm: sha256WithRSAEncryption
09:1d:92:15:0f:de:b8:f6:56:0d:60:51:a3:93:9c:ec:f6:6d:
71:17:be:d8:54:a7:e7:2a:da:e3:46:fb:90:8c:ba:6d:de:90:
60:72:1d:b8:cb:18:ce:a2:9f:35:40:91:d0:2c:27:b7:89:73:
da:60:44:44:5c:d1:8b:95:3f:e9:cb:14:07:2d:a7:c0:cc:6a:
d3:d1:83:ea:27:b9:a5:30:6e:ba:9a:4d:ae:66:54:74:0d:52:
9b:e6:b5:3e:21:bd:70:56:d9:f0:73:12:28:83:d4:ec:fd:75:
47:2e:c6:62:b3:76:4a:74:34:c3:67:25:5e:27:c8:91:15:f5:
d2:14:c5:c3:65:a4:57:53:c2:48:13:ae:8e:d2:3e:d9:d9:4a:
e0:82:3e:8d:22:0a:72:91:12:88:b6:c3:92:ea:d8:3c:52:c0:
a8:c3:38:d8:2c:81:a2:f2:b4:98:f1:05:38:22:a4:2f:4a:8e:
f2:d1:91:eb:7e:ad:f4:54:1c:64:b7:e0:1a:c3:67:fa:6f:7e:
c1:bb:cb:36:91:74:01:d2:45:ff:2c:42:a9:10:db:82:38:f1:
c0:16:cd:71:0b:2c:2b:b1:c3:7d:ea:f8:f7:17:95:11:7a:6a:
f3:8b:b5:32:d3:18:26:cd:d9:84:f8:7e:0b:2d:66:86:87:6e:
42:78:4e:7f
-----BEGIN CERTIFICATE-----
MIIFWjCCBEKgAwIBAgISAYvDL0h+Y+Ag1pQLUQSGXQ0nMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVhNDNlOWUyNjc5NTZlN2YyNjJjMTdmMDA4OWYwZjYwYmE3
YWJlZmIwHhcNMjMxMTEyMTA1ODU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwYzk3NWFiMGVhN2JjMzJjMzFlNjFmMDhkNWQ5NjQ1YmVmODk4YTU0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjJYHlbd2UnpLz8n6qrE15rOFlGMZ
tfJ3LstXBT1ysKu7GO0evgaAEB5u2veB3p5tQjLKOtAb2BKt/VftIR2OonpW62UO
7SoCn+345sbRTR+Ox0JuKewh8rxVMP5e2XIzpM+AV4YHIgUbRQFfpLlANVj+h5xU
BJtfhFuZ5Xbuu7RMdfDxlb/fPTMtQbeq8lnYbMhFH0u1+wtlfqnXpJSPVpvk5+t/
52poSYjxdxA3qGFvLItuVxEbOq8Qx5ZivbvXwtTVWUX6S6bVp3RNXp1AAJd6NXJE
pUqn+4xivMrJXfjrI6DQgCmt91tNiLerPmCuE6x+yGCHCDoVScofwL5XpwIDAQAB
o4ICZjCCAmIwHQYDVR0OBBYEFAyXWrDqe8MsMeYfCNXZZFvviYpUMB8GA1UdIwQY
MBaAFFpD6eJnlW5/JiwX8AifD2C6er77MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvV2tQcDRtZVZibjhtTEJmd0NKOFBZTHA2dnZzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMC8wNjQ0NGMtOWQ5Yi00YzZiLTk1MGIt
NzljODk4N2E4YjFjLzEvREpkYXNPcDd3eXd4NWg4STFkbGtXLS1KaWxRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMC8wNjQ0NGMtOWQ5Yi00YzZiLTk1MGItNzljODk4N2E4YjFj
LzEvV2tQcDRtZVZibjhtTEJmd0NKOFBZTHA2dnZzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHwGCCsGAQUFBwEHAQH/BG0wazBaBAIAATBUAwQALjGAAwQA
LjGFAwQALjGKAwQBLjGWAwQALjGaAwQALjGfAwQALjG6AwQALjHAAwQCLjHIAwQA
LjHRAwQALjHTAwQBX7GSAwQBX7GWAwQFX7GgMA0EAgACMAcDBQAqAg3xMA0GCSqG
SIb3DQEBCwUAA4IBAQAJHZIVD9649lYNYFGjk5zs9m1xF77YVKfnKtrjRvuQjLpt
3pBgch24yxjOop81QJHQLCe3iXPaYEREXNGLlT/pyxQHLafAzGrT0YPqJ7mlMG66
mk2uZlR0DVKb5rU+Ib1wVtnwcxIog9Ts/XVHLsZis3ZKdDTDZyVeJ8iRFfXSFMXD
ZaRXU8JIE66O0j7Z2Urggj6NIgpykRKItsOS6tg8UsCowzjYLIGi8rSY8QU4IqQv
So7y0ZHrfq30VBxkt+Aaw2f6b37Bu8s2kXQB0kX/LEKpENuCOPHAFs1xCywrscN9
6vj3F5URemrzi7Uy0xgmzdmE+H4LLWaGh25CeE5/
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:05 2024 by rpki-client on console-fra.rpki-client.org